Privacy Policy

Who we are

Our website address is: https://globalhealthjobs.com. GlobalHealthJobs.com is dedicated to connecting healthcare professionals with employment opportunities worldwide. We are committed to protecting the privacy and security of your personal data.


What personal data we collect and why we collect it

We collect various types of personal data to provide and improve our services, as described below.


Comments

When visitors leave comments on the site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

  • Purpose: To allow users to engage with content, combat spam, and display user-generated content.
  • Legal Basis (UK GDPR): Legitimate interests (to moderate comments and protect the website from spam) and Consent (for the Gravatar service, implied by use).

User Accounts and Profiles (for Job Seekers and Employers) If you register for an account on GlobalHealthJobs.com, we collect the following information:

  • Job Seekers:
  • Registration Data: Name, email address, password.
  • Profile Data: Professional qualifications, work experience, education, skills, preferred job roles, location preferences, resume/CV uploads, cover letters, and any other information you choose to provide in your profile.
  • Application Data: Information submitted when applying for jobs through the platform.
  • Employers/Recruiters:
  • Registration Data: Company name, contact person name, email address, phone number, company address, password.
  • Job Posting Data: Details of job vacancies posted on the platform.
  • Purpose: To create and manage user accounts, allow job seekers to create professional profiles and apply for jobs, enable employers to post jobs and find suitable candidates, facilitate communication between job seekers and employers, and personalize user experience.
  • Legal Basis (UK GDPR): Performance of a contract (to provide our services to you as a registered user) and Legitimate interests (to improve our services and connect relevant parties).


Media

If you upload images to the website (e.g., for profile pictures or company logos), you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

  • Purpose: To allow users to enhance their profiles or job postings with visual content.
  • Legal Basis (UK GDPR): Consent (by uploading the image) and Legitimate interests (to provide rich content on the platform).

Contact Forms When you use our contact forms (e.g., for inquiries, support, or feedback), we collect the information you provide, which typically includes your name, email address, and your message.

  • Purpose: To respond to your inquiries, provide customer support, and gather feedback to improve our services.

Legal Basis (UK GDPR): Legitimate interests (to respond to user communications and improve services) and Performance of a contract (if the inquiry relates to an existing service agreement).


Contact forms


Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article (e.g., if you are a content contributor or administrator), an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

  • Purpose: To remember user preferences, facilitate login, improve user experience, and ensure website functionality.
  • Legal Basis (UK GDPR): Consent (for non-essential cookies via a cookie banner/consent mechanism) and Legitimate interests (for strictly necessary cookies required for website operation).
  • Action Required: You need a clear cookie consent banner that allows users to accept, decline, or manage cookie preferences, especially for non-essential cookies.


Embedded content from other websites

Articles and job listings on this site may include embedded content (e.g. videos from YouTube, job application forms hosted on external ATS systems, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

  • Purpose: To provide richer content and integrate with external services relevant to job seeking and recruitment.
  • Legal Basis (UK GDPR): Legitimate interests (to enhance user experience) and potential Consent (if embedded content uses non-essential cookies/tracking, which should be managed by your cookie consent mechanism).
  • Recommendation: Be transparent about the specific types of embedded content you use (e.g., YouTube videos, external application forms) and link to their respective privacy policies where possible.

Analytics

We use analytics services to understand how visitors interact with our website, which helps us improve its functionality and content. This may include collecting information about your browser, network, device, pages visited, duration of visit, and your IP address.

  • Purpose: To monitor website performance, analyze user behavior, understand traffic sources, and identify areas for improvement.
  • Legal Basis (UK GDPR): Legitimate interests (to improve our website and services, provided appropriate safeguards like IP anonymization are in place). For certain types of analytics cookies, Consent may be required.
  • Recommendation: If using Google Analytics, ensure IP anonymization is enabled. Consider a consent-based approach for analytics cookies via your cookie banner.


 


Who we share your data with

We may share your personal data with third parties in the following circumstances:

  • Employers/Recruiters: If you are a job seeker and apply for a job or make your profile visible, your profile information, resume/CV, and application data will be shared with the relevant employer/recruiter.
  • Service Providers: We engage third-party service providers to perform functions on our behalf, such as website hosting, database management, email delivery, payment processing, and analytics. These providers only have access to personal data necessary to perform their services and are obligated to protect it.
  • Examples (Action Required: List specific types of providers you use):
  • Hosting: [e.g., AWS, Google Cloud]
  • Email Communication: [e.g., Mailchimp, SendGrid]
  • Payment Processing (if applicable): [e.g., Stripe, PayPal]
  • Customer Support: [e.g., Zendesk]
  • Spam Detection: [e.g., Akismet]
  • Legal Requirements: We may disclose your data if required by law or in response to valid requests by public authorities (e.g., a court order or government agency).
  • Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction. We will notify you before your personal data becomes subject to a different privacy policy.
  • Legal Basis (UK GDPR): Performance of a contract (sharing with employers for job applications), Legitimate interests (using service providers to operate the website efficiently), Legal obligation (responding to lawful requests).


How long we retain your data

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Comments: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
  • User Accounts: For users that register on our website, we retain their personal information as long as their account is active or as needed to provide them services. If an account is inactive for a prolonged period, we may deactivate or delete it, subject to providing prior notice.
  • Job Application Data: Data submitted for job applications may be retained for a period necessary for the employer’s recruitment process and for our legitimate interests in maintaining records of services provided, typically for 6 months.
  • Contact Form Submissions: Retained for 1 yearfor customer service purposes.
  • Analytics Data: Retained according to the policies of the analytics provider, typically with anonymization and aggregated reporting.

In some cases, we may anonymize your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.


What rights you have over your data

Under UK GDPR, you have the following rights regarding your personal data:

  • Right to be Informed: You have the right to be informed about the collection and use of your personal data. This Privacy Policy serves to fulfill this right.
  • Right of Access: If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you. For registered users, you can typically edit your profile information directly within your account settings.
  • Right to Erasure (“Right to be Forgotten”): You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
  • Right to Object: You have the right to object to our processing of your personal data in certain circumstances, including direct marketing.
  • Rights in Relation to Automated Decision Making and Profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, unless certain exceptions apply.

To exercise any of these rights, please contact us using the details provided in the “Your Contact Information” section below. We will respond to your request within one month.


Where we send your data

Visitor comments may be checked through an automated spam detection service. Your personal data may be transferred to, and stored at, a destination outside the UK and European Economic Area (EEA) if any of our service providers or partners are located in such countries. Where this is the case, we will ensure appropriate safeguards are in place to protect your data, such as standard contractual clauses approved by the European Commission or the UK Information Commissioner’s Office (ICO), or by relying on adequacy decisions.


Your contact information

For any questions or concerns regarding this Privacy Policy or your personal data, please contact us


Additional information

How we protect your data

We are committed to ensuring the security of your personal data. We implement various technical and organisational measures to protect your data from unauthorised access, disclosure, alteration, and destruction. These measures include:

  • Encryption: [Action Required: State if you use SSL/TLS for data in transit (e.g., “SSL/TLS encryption for data in transit”). If you encrypt data at rest, mention that too.]
  • Access Controls: Restricting access to personal data to authorized personnel only, based on a need-to-know basis.
  • Firewalls and Security Software: Employing industry-standard firewalls and security software to protect our systems.
  • Regular Security Audits: Conducting regular security audits and vulnerability assessments.
  • Data Minimisation: Collecting only the personal data that is necessary for the stated purposes.
  • Pseudonymisation/Anonymisation: Where feasible, we use pseudonymisation or anonymisation techniques to protect sensitive data.

While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.


 


What data breach procedures we have in place

In the event of a personal data breach, we have procedures in place to assess the risk to individuals’ rights and freedoms, and to notify the relevant supervisory authority (e.g., the ICO in the UK) within 72 hours where required by law. We will also communicate with affected individuals without undue delay if the breach is likely to result in a high risk to their rights and freedoms, providing them with information about the nature of the breach and measures they can take to mitigate potential adverse effects.


What third parties we receive data from

Currently, we generally collect data directly from you. If we were to receive data about you from third parties (e.g., recruitment agencies providing candidate details), we would ensure they have the legal basis to share that data with us and would update this policy accordingly.


What automated decision making and/or profiling we do with user data

We do not currently employ automated decision-making that produces legal effects concerning individuals or similarly significantly affects them.

We may use profiling in a limited way to:

  • Suggest relevant job opportunities to job seekers based on their profile data and application history.
  • Suggest relevant candidates to employers based on their job postings and search criteria.
  • Analyze user behavior on our platform to improve our services and features (e.g., understanding popular job categories, user flows).

This profiling is used for personalization and service improvement and does not result in decisions that significantly impact your rights or access to services without human intervention. You have the right to object to such profiling.


Industry regulatory disclosure requirements

As a UK-based organisation processing personal data, we are subject to the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We are regulated by the Information Commissioner’s Office (ICO). You have the right to lodge a complaint with the ICO if you believe your data protection rights have been infringed.

All the world’s best Global Health opportunities. Register now.

Kopf logo